A flaw was found in the way pidgin certain HTTP response headers. A malicious server or man-in-the-middle could send a malformed HTTP response that could lead to a crash.
Acknowledgements:
Red Hat would like to thank the Pidgin project for reporting this issue. Upstream acknowledges Jacob Appelbaum of the Tor Project as the original reporter of this issue.